[VIM] False: Joomla/Mambo Jambook v1.0 beta7 Rfi Vuln.

security curmudgeon jericho at attrition.org
Thu Apr 26 21:08:44 UTC 2007


: Bugtraq 23509 looks false. It concerns a remote file include flaw in a 
: third-party component for Mambo / Joomla called Jambook. I installed 1.0 
: beta7, which crazy_king claims is affected. Here's the code in 
: 'components/com_jambook/jambook.php':

This is also CVE 2007-2196, and the original disclosure is from bugtraq:
http://archives.neohapsis.com/archives/bugtraq/2007-04/0239.html



More information about the VIM mailing list